New Botnet impacts Symantec Client Port 2967 on unpatched PCs

Community

Email Notifications

Personal Links

Harry Waldron - IT Security

Security Developments, Software Updates and Best Practices

There appears to be active exploitation of an issue patched by Symantec back in May 2006

New Botnet impacts Symantec Client Port 2967
http://www.incidents.org/diary.php?storyid=1892

Symantec Client Security and Symantec AntiVirus Elevation of Privilege
http://www.symantec.com/avcenter/security/Content/2006.05.25.html

QUOTE: We've received reports of a massive new outbreak of bots exploiting the Symantec Client Security and Antivirus escalation of privilege vulnerability. ("new" implying the outbreak, not the vulnerability

Posted: Nov 27 2006, 07:38 PM by Harry Waldron | with 2 comment(s)

Comments

Harry Waldron - Microsoft MVP Blog said:

This new IRC based threat attempts to spread using a number of security exploits, including the SYM06-010

# November 29, 2006 2:06 PM

Harry Waldron - My IT Forums Blog said:

This new IRC based threat attempts to spread using a number of security exploits, including the SYM06-010

# November 29, 2006 2:08 PM

Questions? Contact Susan at Susan-at-msmvps.com. Each post's copyright held by the original author. All rights reserved. Blog site is an independent site not sponsored by Microsoft.
Our servers would like to thank www.ownwebnow.com and www.exchangedefender.com. We wouldn't be here without the generosity of Vlad Mazek and his companies.

Powered by Community Server (Commercial Edition), by Telligent Systems

Theme based on the Paperclip Blog Theme included in Community Server.
Enhanced to a Site-Wide Theme by Interscape Technologies.

Recent Posts

Community

Email Notifications

Personal Links

Archives

Harry Waldron - IT Security